65,000+ Businesses Suffered Data Leaks Due to Microsoft Server Misconfiguration
Microsoft Server Misconfiguration allowed unauthenticated access to some business transaction data pertaining to exchanges between Microsoft and potential customers, such as the planning or possible deployment and provisioning of Microsoft services. The exposure totals 2.4 gigabytes of data, which…
0 Comments3 Minutes
New Malicious “Clicker Apps” Downloaded by over 20M Users
Sixteen mobile malware apps have been detected posing as legitimate utilities while automatically crawling adverts in the background. The McAfee Mobile Research Team recently discovered new Clicker malware that had infiltrated Google Play. In total, 16 previously available Google Play applications…
0 Comments4 Minutes
Diffie Advises Security Professionals to Be Prepared for the Quantum Computing Age
The respected cryptography pioneer, Dr. Whitfield Diffie, has advised that anyone interested in system security should take Quantum Computing Age seriously, as it is not going away anytime soon. Dr. Diffie, known for his co-invention of public key cryptography and digital signatures and as the…
0 Comments5 Minutes
Researchers Issue Warning Regarding New Phishing-as-a-Service Model Used by Cyber Criminals
Caffeine, a previously unknown phishing-as-a-service (PhaaS) toolset, is being used by cybercriminals to scale up their attacks and deliver malicious payloads easily. “This platform has a simple UI and comes for a relatively moderate cost while offering its criminal customers a plethora of…
0 Comments4 Minutes
Penetration Testing Process and Guide
Penetration testing is a popular and successful method for identifying security flaws in an organization’s IT infrastructure. It involves performing a vulnerability assessment of your IT infrastructure by “ethically hacking” any system, network or application to simulate how a…
0 Comments17 Minutes
Microsoft releases enhanced mitigations for unpatched Exchange Server vulnerabilities
Microsoft announced on Friday that it had made additional improvements to the mitigation mechanism available to thwart exploitation efforts against the recently discovered unpatched security weaknesses in Exchange Server. To that end, Microsoft updated the blocking rule in IIS Manager from…
0 Comments3 Minutes
ALERT: Critical Vulnerability on FortiGate and FortiProxy, According to Fortinet
Fortinet has notified its customers of a security weakness affecting FortiGate firewalls and FortiProxy web proxies, which can allow attackers to execute unauthorized operations on vulnerable systems. | Vulnerability on FortiGate Vulnerability on FortiGate | The significant bug, identified as…
0 Comments3 Minutes
Why companies need EDR & MDR for complete Network Protection
Endpoint devices, including desktop computers, laptops, and mobile phones, allow users to connect to company networks and utilize their resources daily. However, these devices broaden the attack surface and expose the organization to aggressive attacks and data breaches. MDR for complete Network…
0 Comments8 Minutes
ALERT: Unpatched Microsoft Exchange Zero-Day Actively Exploited
Security experts are warning about previously unknown holes in fully patched Microsoft Exchange servers that are being exploited in real-world attacks by malicious actors to accomplish remote code execution on afflicted computers. | Unpatched Microsoft Exchange Zero-Day Unpatched Microsoft…
0 Comments5 Minutes
Rhyno Cybersecurity Speaking at the Canadian Society of Iranian Engineers and Architects
October 3, 2022 – Kitchener, ON – Rhyno Cybersecurity is pleased to announce that CTO and Risk Advisor, Dan Duran, will be a keynote speaker at the Canadian Society of Iranian Engineers and Architects (Mohandes) this coming October 5, 2022. The presentation titled “Introduction…
0 Comments3 Minutes